diff --git a/policies/compat_login/compat_login.rego b/policies/compat_login/compat_login.rego
index c856aaf05..4f76842cd 100644
--- a/policies/compat_login/compat_login.rego
+++ b/policies/compat_login/compat_login.rego
@@ -14,12 +14,6 @@ import data.common
 
 default allow := false
 
-is_interactive if {
-	# Only `m.login.sso` (the interactive web form) is interactive;
-	# `m.login.password` and `m.login.token` (including the finalisation of an SSO login) are not
-	input.login.type == "m.login.sso"
-}
-
 allow if {
 	count(violation) == 0
 }
@@ -72,3 +66,9 @@ violation contains {
 	# sessions to return under the limit.
 	data.session_limit.hard_limit <= input.session_counts.total
 }
+
+is_interactive if {
+	# Only `m.login.sso` (the interactive web form) is interactive;
+	# `m.login.password` and `m.login.token` (including the finalisation of an SSO login) are not
+	input.login.type == "m.login.sso"
+}